commit 5904802e7bc16b201e7887761b3f8a1fc133bb28 Author: Adolf Belka Date: Wed May 14 15:15:13 2025 +0200 libloc: Addition of patch to deal with gettext update to 0.25 Suggested-by: Michael Tremer Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 0c548547e402abf21acdfd7690e402257e464a1a Author: Adolf Belka Date: Wed May 14 15:15:12 2025 +0200 ddns: Addition of patch to deal with gettext update to 0.25 Suggested-by: Michael Tremer Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 1f08b0357bdfe150fa7e2139ba7b9094de567562 Author: Adolf Belka Date: Wed May 14 15:15:11 2025 +0200 fireperf: Addition of patch to deal with gettext update to 0.25 Suggested-by: Michael Tremer Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 9c11f9efdaa64e268d19561e7b802549740f32b9 Author: Adolf Belka Date: Wed May 14 15:15:10 2025 +0200 gettext: Update to version 0.25 - Update from version 0.24 to 0.25 - Update of rootfile - This is part of a patch set as the gettext update required some patches to other packages to get them to build - Changelog 0.25 # Programming languages support: * Go: - xgettext now supports Go. - 'msgfmt -c' now verifies the syntax of translations of Go format strings. - New examples 'hello-go' and 'hello-go-http' have been added. * TypeScript: - xgettext now supports TypeScript and TSX (= TypeScript with JSX extensions). * D: - A new library libintl_d.a contains the runtime for using GNU gettext message catalogs in the D programming language. - xgettext now supports D. - 'msgfmt -c' now verifies the syntax of translations of D format strings. - A new example 'hello-d' has been added. * Modula-2: - A new library libintl_m2.so contains the runtime for using GNU gettext message catalogs in the Modula-2 programming language. - xgettext now supports Modula-2. - 'msgfmt -c' now verifies the syntax of translations of Modula-2 format strings. - A new example 'hello-modula2' has been added. # Improvements for maintainers: * xgettext has a new option '--generated' that customizes the way the 'POT-Creation-Date' in the POT file is computed. 0.24.1 * Bug fixes: - Fix bad interactions between autoreconf and autopoint. - xgettext: Creating the POT file of a package under Git version control is now faster. Also, the use of Git can be turned off by specifying the option '--no-git'. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 233dbc408a9e92abcd88b90a7d868c412aa71881 Author: Adolf Belka Date: Wed May 14 14:59:54 2025 +0200 core196: Ship customservices from fwhosts - This was missed in CU193 so the patch from @Luca did not end up getting shipped with Core Update 193. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 3568b9f7ca2b3d3ab095541c2027b1a2e16f88cc Author: Michael Tremer Date: Wed May 14 09:32:54 2025 +0000 xorriso: Update automake scripts This fixes the build on riscv64. Signed-off-by: Michael Tremer commit f467275a511d8d2e602fe3909d300183ebd63154 Author: Michael Tremer Date: Wed May 14 09:31:26 2025 +0000 core196: Update initramdisks for updated microcode Signed-off-by: Michael Tremer commit 9d188ab11d5b1fb5c1105c2494b79a44a9fb2db6 Author: Adolf Belka Date: Tue May 13 18:03:33 2025 +0200 core196: Ship intel-microcode Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 6cebdccf50388ad3e085ca4f406c7cd51a89ec37 Author: Adolf Belka Date: Tue May 13 18:03:38 2025 +0200 intel-microcode: Update to version 20250512 - Update from version 20250211 to 20250512 - Update of rootfile - Changelog 20250512 Purpose Security updates for INTEL-SA-01153 Security updates for INTEL-SA-01244 Security updates for INTEL-SA-01247 Security updates for INTEL-SA-01322 Note: INTEL-SA-01244 and INTEL-SA-01247 will be published on May 13th 2025 Update for functional issues. Refer to Intel® Core™ Ultra 200 V Series Processor (Series2) for details. Update for functional issues. Refer to Intel® Core™ Ultra 200 V Series Processor for details. Update for functional issues. Refer to Intel® Core™ Ultra Processor for details. Update for functional issues. Refer to 14th/13th Generation Intel® Core™ Processor Specification Update for details. Update for functional issues. Refer to 12th Generation Intel® Core™ Processor Family for details. Update for functional issues. Refer to 11th Gen Intel® Core™ Processor Specification Update for details. Update for functional issues. Refer to 10th Gen Intel® Core™ Processor Families Specification Update for details. Update for functional issues. Refer to 10th Gen Intel® Core™ Processor Families Specification Update for details. Update for functional issues. Refer to 8th and 9th Generation Intel® Core™ Processor Family Spec Update for details. Update for functional issues. Refer to 6th Gen Intel® Xeon® Scalable Processors Specification Update for details. Update for functional issues. Refer to 5th Gen Intel® Xeon® Processor Scalable Family for details. Update for functional issues. Refer to 4th Gen Intel® Xeon® Scalable Processors Specification Update for details. Update for functional issues. Refer to 3rd Generation Intel® Xeon® Scalable Processors Specification Update for details. Update for functional issues. Refer to 3rd Generation Intel® Xeon® Scalable Processors Specification Update for details. Update for functional issues. Refer to 2nd Generation Intel® Xeon® Processor Scalable Family Specification Update for details. Update for functional issues. Refer to Intel® Xeon® 6700-Series Processor Specification Update for details. Update for functional issues. Refer to Intel® Xeon® E-2300 Processor Specification Update for details. Update for functional issues. Refer to Intel® Xeon® D-2700 Processor Specification Update for details. Update for functional issues. Refer to Intel® Processors and Intel® Core™ i3 N-Series for details. Update for functional issues. Refer to Intel® Pentium® Silver and Intel® Celeron® Processor Specification Update for details. New Platforms Processor Stepping F-M-S/PI New Ver Products ARL-U A1 06-b5-00/80 0000000a Core™ Ultra Processor (Series2) ARL-S/HX (8P) B0 06-c6-02/82 00000118 Core™ Ultra Processor (Series2) ARL-H A1 06-c5-02/82 00000118 Core™ Ultra Processor (Series2) GNR-AP/SP B0 06-ad-01/95 010003a2 Xeon Scalable Gen6 GNR-AP/SP H0 06-ad-01/20 0a0000d1 Xeon Scalable Gen6 LNL B0 06-bd-01/80 0000011f Core™ Ultra 200 V Series Processor Updated Platforms Processor Stepping F-M-S/PI Old Ver New Ver Products ADL C0 06-97-02/07 00000038 0000003a Core Gen12 ADL H0 06-97-05/07 00000038 0000003a Core Gen12 ADL L0 06-9a-03/80 00000436 00000437 Core Gen12 ADL R0 06-9a-04/80 00000436 00000437 Core Gen12 ADL-N N0 06-be-00/19 0000001c 0000001d Core i3-N305/N300, N50/N97/N100/N200, Atom x7211E/x7213E/x7425E AML-Y42 V0 06-8e-0c/94 000000fc 00000100 Core Gen10 Mobile AZB A0/R0 06-9a-04/40 00000009 0000000a Intel(R) Atom(R) C1100 CFL-H R0 06-9e-0d/22 00000102 00000104 Core Gen9 Mobile CLX-SP B1 06-55-07/bf 05003707 05003901 Xeon Scalable Gen2 CML-H R1 06-a5-02/20 000000fc 00000100 Core Gen10 Mobile CML-S102 Q0 06-a5-05/22 000000fc 00000100 Core Gen10 CML-S62 G1 06-a5-03/22 000000fc 00000100 Core Gen10 CML-U42 V0 06-8e-0c/94 000000fc 00000100 Core Gen10 Mobile CML-U62 V1 A0 06-a6-00/80 000000fe 00000102 Core Gen10 Mobile CML-U62 V2 K1 06-a6-01/80 000000fc 00000100 Core Gen10 Mobile CML-Y42 V0 06-8e-0c/94 000000fc 00000100 Core Gen10 Mobile CPX-SP A1 06-55-0b/bf 07002904 07002b01 Xeon Scalable Gen3 EMR-SP A1 06-cf-02/87 21000291 210002a9 Xeon Scalable Gen5 GLK-R R0 06-7a-08/01 00000024 00000026 Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 ICL-D B0 06-6c-01/10 010002c0 010002d0 Xeon D-17xx, D-27xx ICL-U/Y D1 06-7e-05/80 000000c6 000000ca Core Gen10 Mobile ICX-SP Dx/M1 06-6a-06/87 0d0003f5 0d000404 Xeon Scalable Gen3 MTL C0 06-aa-04/e6 00000020 00000024 Core™ Ultra Processor RKL-S B0 06-a7-01/02 00000063 00000064 Core Gen11 RPL-E/HX/S B0 06-b7-01/32 0000012c 0000012f Core Gen13/Gen14 RPL-H/P/PX 6+8 J0 06-ba-02/e0 00004124 00004128 Core Gen13 RPL-HX/S C0 06-bf-02/07 00000038 0000003a Core Gen13/Gen14 RPL-S H0 06-bf-05/07 00000038 0000003a Core Gen13/Gen14 RPL-U 2+8 Q0 06-ba-03/e0 00004124 00004128 Core Gen13 SPR-HBM Bx 06-8f-08/10 2c0003e0 2c0003f7 Xeon Max SPR-SP E4/S2 06-8f-07/87 2b000620 2b000639 Xeon Scalable Gen4 SPR-SP E5/S3 06-8f-08/87 2b000620 2b000639 Xeon Scalable Gen4 SRF-SP C0 06-af-03/01 03000330 03000341 Xeon 6700-Series Processors with E-Cores TGL B0/B1 06-8c-01/80 000000b8 000000bc Core Gen11 Mobile TGL-H R0 06-8d-01/c2 00000052 00000056 Core Gen11 Mobile TGL-R C0 06-8c-02/c2 00000038 0000003c Core Gen11 Mobile TWL N0 06-be-00/19 0000001c 0000001d Core i3-N305/N300, N50/N97/N100/N200, Atom x7211E/x7213E/x7425E WHL-U V0 06-8e-0c/94 000000fc 00000100 Core Gen8 Mobile Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 52fb19703250253e12e80782f73e59f9d974567a Author: Adolf Belka Date: Tue May 13 18:03:34 2025 +0200 core196: Ship libpng Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 074ba01a4523e8905ec1c99a1dbbebe61f6bc861 Author: Adolf Belka Date: Tue May 13 18:03:39 2025 +0200 libpng: Update to version 1.6.48 - Update from version 1.6.45 to 1.6.48 - Update of rootfile - Changelog 1.6.48 Fixed the floating-point version of the mDCv setter `png_set_mDCv`. (Reported by Mohit Bakshi; fixed by John Bowler) Added #error directives to discourage the inclusion of private libpng implementation header files in PNG-supporting applications. Added the CMake build option `PNG_LIBCONF_HEADER`, to be used as an alternative to `DFA_XTRA`. Removed the Travis CI configuration files, with heartfelt thanks for their generous support of our project over the past five years! 1.6.47 Modified the behaviour of colorspace chunks in order to adhere to the new precedence rules formulated in the latest draft of the PNG Specification. (Contributed by John Bowler) Fixed a latent bug in `png_write_iCCP`. This would have been a read-beyond-end-of-malloc vulnerability, introduced early in the libpng-1.6.0 development, yet (fortunately!) it was inaccessible before the above-mentioned modification of the colorspace precedence rules, due to pre-existing colorspace checks. (Reported by Bob Friesenhahn; fixed by John Bowler) 1.6.46 Added support for the mDCV and cLLI chunks. (Contributed by John Bowler) Fixed a build issue affecting C89 compilers. This was a regression introduced in libpng-1.6.45. (Contributed by John Bowler) Added makefile.c89, specifically for testing C89 compilers. Cleaned up contrib/pngminus: corrected an old typo, removed an old workaround, and updated the CMake file. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 23ff9984ad6c506e62e92610301318078fcbf760 Author: Adolf Belka Date: Tue May 13 18:03:35 2025 +0200 core196: Ship libxml2 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 65c75d2775b787a7fbaf057de4f41c15a6301977 Author: Adolf Belka Date: Tue May 13 18:03:40 2025 +0200 libxml2: Update to version 2.14.2 - Update from version 2.14.0 to 2.14.2 - Update of rootfile - Two CVE fixes in 2.14.2 - Changelog 2.14.2 ### Security - [CVE-2025-32415] schemas: Fix heap buffer overflow in xmlSchemaIDCFillNodeTables - [CVE-2025-32414] python: Read at most len/4 characters. (Maks Verver) ### Build - error: Fix initGenericErrorDefaultFunc compatibility macro - meson: don't link with pthreads on Windows (Benjamin Gilbert) - cmake, meson: Align Darwin version info with Autotools - globals: Fix --with-thread-alloc build - meson: ensure relaxng option supports minimum option (Lovell Fuller) 2.14.1 ### Regressions - parser: Fix XML_PARSE_NOBLANKS dropping non-whitespace text ### Build systems - win32-legacy: Fix build (ThomasK) - meson: Fix build from tarball - cmake, meson: Change library filename to libxml2.so.16.0.0 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit e7dd7ab43e76d7c6e9747c03533e13eef8b7e6ff Author: Adolf Belka Date: Tue May 13 18:03:36 2025 +0200 core196: Ship lvm2 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit cca6fdc7be122f15ce1ab1d61c706d5feee6c10c Author: Adolf Belka Date: Tue May 13 18:03:41 2025 +0200 lvm2: Update to version 2.03.32 - Update from version 2.03.31 to 2.03.32 - Update of rootfile not required - Changelog 2.03.32 Lvconvert vdopool conversion propperly validates acceptable LVs. Accept thin pool data LV as cachable LV. Allow using zram block devices (likely for testing). Fix lvresize when resizing COW snapshots already covering origin. Fix lvmdbusd read of executed lvm commands output. Fix construction of DM UUID for cachevol _cdata and _cmeta devices. Ignore PV claims from old metadata when then PV belongs to a new VG. Fix integrity metadata rounding. Accept --autobackup option in pvresize. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 8438ea9b05da11b68b0ccf97e35b8da958b204b0 Author: Adolf Belka Date: Tue May 13 18:03:37 2025 +0200 core196: Ship pixman Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 0e4792bf5e1c63895dcef07bf9033217d3276f9b Author: Adolf Belka Date: Tue May 13 18:03:42 2025 +0200 pixman: Update to version 0.46.0 - Update from version 0.44.0 to 0.46.0 - Update of rootfile - Changelog 0.46.0 This release notably adds fast paths for RISC-V using the "V" vector extension, contributed by developers at Samsung. RISC-V: Only enable RVV on linux if hwcap headers are available Test case for compositing with a negative stride Fix arm64 advanced prefetcher region: add parametric primitive type to generalize implementation detail region: make print specifier parametric region: add fractional implementation based on 64bit floating point numbe region: add rectf convenience functions region: add pixman_region32_copy_from_region64f utility function region: add image clip and composite functions for fractional regions test/region: add fractional region tests Add a16b16g16r16 format test/stress-test: add a16b16g16r16 ci: Improve coverage and artifact handling ci: Use newer version of QEMU for Bookworm test: Increase timeout for alpha-loop test ci: Enable cross PPC tests ci: Clean up after disabling failing targets ci: Add option to change the default runner tag ci: Move Docker build to a CI template ci: Use native ARM runners for Linux ARM targets ci: Improve Windows images ci: Use regular Debian as base Windows for ARM ci: Fix runner tag variable expansion Fix some build warning rvv: Pass through clang-format docker: Update Wine to 10.5 and update LLVM-MinGW docker: Update Meson to 1.7 docker: Move LLVM archive to a separate thin layer docker: Decrease build time for gcovr test: Add lowlevel-blt-bench result comparison script rvv: Add float suffix to float implementation rvv: Add integer operations ci: Build Wine for windows-amd64 from source ci: Use untagged runners if possible ci: Increase number of retries for Windows targets Post-release version bump to 0.44.3 vmx: Remove unnecessary variable vmx: Remove unpack_565_to_8888() and associated constants vmx: Remove unpack_128_2x128_16() vmx: Remove unpack{hi,lo}_128_8x16 functions vmx: Move and use unpack{hi,lo}_128_16x8 in pix_multiply() vmx: Use create_mask_32_128() more places vmx: Use appropriate types vmx: Add and use create_mask_16_128() function vmx: Use selector variables vmx: Add and use `vzero` constant vmx: Simplify over() function vmx: Make in_over() a real function vmx: Simplify unpack{hi,lo}_128_16x8() function vmx: Move create_mask_32_128() function vmx: Avoid two shifts in pix_multiply() function vmx: Optimize pix_multiply() vmx: Declare iterator variable in for loop vmx: Disable clang-format around some data structure declarations vmx: Run clang-format ci: Enable LLVM testing on linux-arm-v7 ci: Allow failures in windows-amd64 jobs Pre-release version bump to 0.46.0 arm: Move the .fpu neon directive around .clang-format: Add 0.44.2 meson: require Meson >= 1.3.0 ci: Rename mips64el to mips64le ci: Enable ppc64le testing with clang Post-release version bump to 0.44.1 vmx: Fix is_opaque, is_zero, is_transparent functions release.sh: Some improvements Pre-release version bump to 0.44.2 RISC-V: fix rvv auto-detection on `gcc-13` release.sh: Add script RISC-V: Force spec 1p0 in architecture definiton Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 3a83a992a0e66b3c08998837b32eef753d4dac90 Author: Adolf Belka Date: Tue May 13 18:03:43 2025 +0200 sdl2: Update to version 2.32.6 - Update from version 2.30.6 to 2.32.6 - Update of rootfile - Changelog 2.32.6 Fixed reliability of initializing Switch controllers on macOS Fixed crash when controllers are disconnected on macOS 2.32.4 Fixed controller GUIDs changing randomly on Windows Fixed detecting PlayStation controller sensors on Linux when HIDAPI isn't being used Fixed a crash enumerating some input devices 2.32.2 Fixed stack overflow when setting thread debug names on Windows Fixed flushing audio forever in some cases when recording PulseAudio on Linux Fixed a crash when initializing with controllers connected on macOS Added SDL_HINT_JOYSTICK_HAPTIC_AXES to specify how many haptic axes a device has 2.32.0 Allow destroying a window and its renderer in either order Added cursor-shape-v1 protocol support on Wayland Fixed full immersive mode in Android 9 and higher Improved event processing latency when gamepad/sensor is open Added SDL_HINT_APPLE_RWFROMFILE_USE_RESOURCES to control whether SDL tries to open files from the app's resource directory on macOS Fixed conditional effect playback on Moza Racing devices Fixed input for Thrustmaster PlayStation wheels when hid-tmff2 is installed Enabled direct VRAM access when using the window surface API on PSP Improved window surface support on Nintendo 3DS Fixed condition variable implementation on Nintendo 3DS Fixed byte order detection on Solaris Implemented SDL_TriggerBreakpoint() on aarch64-w64-mingw32 2.30.12 Improved XInput controller detection on Windows Added support for the 8BitDo Ultimate 2C Wireless in Bluetooth mode Fixed Steam Deck controller not being visible to games running on Proton 9 and older Fixed a crash when hot-plugging keyboards and mice on Linux Fixed a crash when disconnecting a Bluetooth audio device on macOS Fixed building with Xcode using older Apple SDKs Fixed a crash when disconnecting an external display on iOS Fixed detection of function keys on Emscripten 2.30.11 Fixed a crash if the controller product name is NULL Fixed the PS3 controller mapping on Windows Allow rendering during the modal resize loop on macOS Corrected CoreAudio surround sound channel layouts Enabled high refresh rates on iOS Fixed SDL_OpenURL() on iOS 18.2 and newer Implemented SDL_OpenURL() on tvOS Fixed Chinese locales on PSP 2.30.10 Improved the performance of whole surface fill operations Fixed an assertion when connecting/disconnecting over RDP Switched the default audio driver on Android to OpenSLES Added support for mouse wheel and extended buttons on PS Vita Fixed a rare crash on KMSDRM 2.30.9 Fixed audio issues on Android 15 Fixed rare audio distortion and crash when audio devices are changed on Windows Fixed the PS5 controller face buttons on Amazon Fire TV Fixed detecting the Steam Virtual Gamepad on macOS Added support for wired XBox controllers on macOS 15.0 Sequoia Added support for the Steam Virtual Gamepad on macOS Sequoia Fixed the Steam Virtual Gamepad from showing up when games aren't running under Steam Fixed flicker when entering/exiting fullscreen or moving the window between scaled and non-scaled displays under Wayland. Fixes for data addresses above 2gb on Emscripten Fixed horizontal mousewheel scale on Emscripten 2.30.8 Fixed a crash in XInput code at startup Fixed flooding the OS with I/O when a PS4/PS5 controller is disconnected Added SDL_VIDEO_DOUBLE_BUFFER support to the Wayland backend SDL_WINDOWEVENT_EXPOSED is sent appropriately when using Wayland Fixed hang at startup in audio code when the application has large stack usage on Linux Fixed initializing KMSDRM on older Linux systems The pre-built SDL2.dll no longer depends on ucrtbase.dll 2.30.7 Added support for the Retro-bit Controller in PS3 mode Fixed the cursor becoming visible when using relative mode under XWayland Fixed DRM initialization failure on some Linux systems Fixed a crash when the current mouse capture window is destroyed Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 1bf8788ff466d9c4f261c3979bc5924ecaa85fc0 Author: Michael Tremer Date: Mon May 12 17:08:18 2025 +0000 OpenVPN: Add auth-user-pass to the client configuration Since we are doing a fake user authentication to get 2FA going, we need to explicitley enable this. Usually clients were happy without this, but somewhere it must have changed recently that clients require this set explicitely. Fixes: #13109 - openVPN, 2FA - client does not ask for One Time Token Reported-by: Heino Gutschmidt Signed-off-by: Michael Tremer commit a62e10de4a55883f5377c12f35df321dab7f5614 Merge: 25594150d 4e8f4314b Author: Michael Tremer Date: Mon May 12 14:55:11 2025 +0000 Merge branch 'master' into next commit 25594150d93b413cdead48dd2c01eb029b3b2d90 Author: Michael Tremer Date: Mon May 12 14:52:46 2025 +0000 make.sh: Run "update-contributors" Signed-off-by: Michael Tremer commit 7ae00b74acebf9baf8faf088f5bff3309f28ac29 Author: Adolf Belka Date: Sat May 10 12:30:57 2025 +0200 langs: Update of language files in line with bug12755 fix Fixes: bug12755 Tested-by: Adolf Belka Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 5e11bfd87725698270de1343ae664b0b872d0d12 Author: Adolf Belka Date: Sat May 10 12:30:56 2025 +0200 chpasswd.cgi: Fixes bug12755 - v3 with password verification correction - v3 version based on feedback from @Michael to use the status value returned from using the htpasswd command. - Also simplified the whole section to carry out the change if the status is 0, ie all went well, otherwise give an error but without identifying if the error is in the username or the password. This makes it more secure as any attacker only knows it failed and doesn't know if any part of the authentication was correct or not. - Changed the error messages in line with this so the language file changes are in the other part of this patch set submission. - Tested out on my vm test bed and worked fine. If the username was incorrect or the password was incorrect or both were incorrect the same error message is given. If both are correct then the update is carried out. Fixes: bug12755 Tested-by: Adolf Belka Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 70763b5df58be94d15ce6a8036ff2c816b742211 Author: Adolf Belka Date: Thu May 1 09:41:03 2025 +0200 core194: Fix cert name and change other check to ! -s - This v2 version corrects the b! -z to ! -s - Error in hostcert extension - -z is for use with strings and not with files. This should have been ! -s. Thanks to @Nick for spotting this and flagging it up. Th ! -z would do the test against the filename string and as this doesn't change then it would always come up true. - I thought I had tested the original patch of this change but obviously not because there was missing whitespace and filenames not quoted plus the fixes I have added in this patch. - I definitely tested this out this time by copying it from the update.sh and applying it to my vm system. I have also tested this out with the hostcert.pem file present and not and with the index.txt file empty and containing something. This now works as it should, which is to only carry out the edit on the serial file if the hostcert.pem file is present AND the index.txt file is empty. - I clearly need to look more carefully at and test even more carefully at any bash statements that I put together. Tested-by: Adolf Belka Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 4e8f4314b766e45a87cbb7513fac0b72f81275fc Author: Michael Tremer Date: Mon May 12 14:52:46 2025 +0000 make.sh: Run "update-contributors" Signed-off-by: Michael Tremer commit 6f71eab9cc12419352d42cc7e442790674fc8c5b Author: Adolf Belka Date: Sat May 10 12:30:57 2025 +0200 langs: Update of language files in line with bug12755 fix Fixes: bug12755 Tested-by: Adolf Belka Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit a461fd70445aec9dfa34bf9c5a29a85e0ad0e2fe Author: Adolf Belka Date: Sat May 10 12:30:56 2025 +0200 chpasswd.cgi: Fixes bug12755 - v3 with password verification correction - v3 version based on feedback from @Michael to use the status value returned from using the htpasswd command. - Also simplified the whole section to carry out the change if the status is 0, ie all went well, otherwise give an error but without identifying if the error is in the username or the password. This makes it more secure as any attacker only knows it failed and doesn't know if any part of the authentication was correct or not. - Changed the error messages in line with this so the language file changes are in the other part of this patch set submission. - Tested out on my vm test bed and worked fine. If the username was incorrect or the password was incorrect or both were incorrect the same error message is given. If both are correct then the update is carried out. Fixes: bug12755 Tested-by: Adolf Belka Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 2d37a7755d1e4dc69900570f406455d6e9fae543 Author: Michael Tremer Date: Mon May 12 14:51:07 2025 +0000 core196: Ship the language list Signed-off-by: Michael Tremer commit 7005ed076b181ca2e7307d9328a07e5694509cc9 Author: Stephen Cuka Date: Sat May 10 22:34:05 2025 -0600 langs/list: Sort languages list. - Sort languages list used by gui.cgi so that the languages appear in alphabetical order in the dropdown. Signed-off-by: Stephen Cuka Signed-off-by: Michael Tremer commit 4fd393ee3fc47e40e3808859bad99ff2a0044692 Author: Stephen Cuka Date: Sat May 10 11:50:24 2025 -0600 langs: Delete unused translations. Signed-off-by: Stephen Cuka Signed-off-by: Michael Tremer commit efd58a7418cbac8ff5c90a20fbdc1d8608679ce6 Author: Michael Tremer Date: Mon May 12 14:49:45 2025 +0000 core196: Ship pakfire.cgi Signed-off-by: Michael Tremer commit 2bdb422a113bbdfb854663a139c0ff6377b9f0e2 Author: Michael Tremer Date: Mon May 12 14:49:35 2025 +0000 core196: Clear filelist Signed-off-by: Michael Tremer commit 3ec17418087b40e09a0874dbef55f5cf195a1829 Author: Stephen Cuka Date: Sat May 10 10:19:37 2025 -0600 pakfire.cgi: Changes to install and remove confirmation pages - On install confirmation page, add list of packages to install - if package is already installed, don't show it on the list - On install and remove confirmation pages, pad out translation of "Package:" to length of 10 so that the column spacing doesn't change for different languages. - Display dependencies for package(s) to remove in 'parent -> child' format. - Display packages in use in 'parent -> child' format. - Add translations for new text in all langs. - functional changes - When removing a package, remove it's dependencies. - Don't allow a package or dependency to be removed if other installed packages depend on it. Signed-off-by: Stephen Cuka Signed-off-by: Michael Tremer commit c76c11a551e4a1e1e549c8327f34e4a4e01fbf71 Author: Michael Tremer Date: Mon May 12 14:46:43 2025 +0000 Remove cdrkit This has been replaced by xorriso. Signed-off-by: Michael Tremer commit 2e4926acc14b9cc43c74ed153a3d1bc751e7e4d2 Author: Michael Tremer Date: Mon May 12 14:43:20 2025 +0000 core196: Ship cmake, cURL, JSON-C, libssh and xorriso Signed-off-by: Michael Tremer commit 45b9eb57b2112c37cd6f494dbd08fa948b1d7b88 Author: Adolf Belka Date: Sun May 11 12:13:04 2025 +0200 transmission: Update to CMakeLists.txt of min cmake version - The main CMakeLists.txt was okay but a lot of the CMakeLists.txt files in the third part folder had min version prior to 3.5 - A patch set has been made in the transmission source but it was also changing a lot of other things. I just created my own patch to update the files in the third party folder and the build was successfull with that. - If a new version is released then this patch can be removed but it will depend on if that new version includes the fix to the bug in 4.0.6 that has resulted in a variety of torrent mirrors banning transmission-4.0.6. This caused the transmission update in IPFire to be reverted to 4.0.5 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 60679bdad1ac70f44b394aab4e9e79f043adf91d Author: Adolf Belka Date: Sun May 11 12:13:03 2025 +0200 soxr: Update CMakeLists.txt with cmake min version - The last update and commit on this package was 7 years ago so unlikely that there will be an update for this. - An issue has been raised on the github site but as none of the other raised issues have been dealt with in the last 7 years it looks like this repo is dead. - Will raise a separate discussion on whether this package should be left in IPFire. - Patch created to update the min cmake version to 3.10 and the build completed successfully with that. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 520bbe01457ea453fd1c769a00b9b9cec98f973e Author: Adolf Belka Date: Sun May 11 12:13:02 2025 +0200 libssh: Update to version 0.11.1 - fixes min cmake version - Update from version 0.10.6 to 0.11.1 - Update of rootfile - Changelog 0.11.1 * Fixed default TTY modes that are set when stdin is not connected to tty (#270) * Fixed zlib cleanup procedure, which could crash on i386 * Various test fixes improving their stability * Fixed cygwin build 0.11.0 * Deprecations and Removals: * Dropped support for DSA * Deprecated Blowfish cipher (will be removed in next release) * Deprecated SSH_BIND_OPTIONS_{RSA,ECDSA}KEY in favor of generic HOSTKEY * Removed the usage of deprecated OpenSSL APIs (Note: Minimum supported OpenSSL version is 1.1.1) * Disabled preauth compression (zlib) by default * Support for pkcs#11 engines are deprecated, pkcs11-provider is used instead * Deprecation of old async SFTP API * libgcrypt cryptographic backend is deprecated * Deprecation of knownhosts hashing * SFTP Improvements: * Added support for async SFTP IO * Added support for sftp_limits() and applied capping to SFTP read/write operations accordingly * Added sftp_home_directory() API support for sftp extension "home-directory" * Added sftp_lsetstat() API for lsetstat extensions * Added sftp_expand_path() to canonicalize path using expand-path@openssh.com extension * Implemented stat and realpath in sftpserver * Added sftp_readlink() API to support hardlink@openssh.com * New extensible callback based SFTP server * Introduced the posix-rename@openssh.com extension * New functions and features: * Added support for PKCS #11 provider for OpenSSL 3.0 * Added testing for GSSAPI Authentication * Implemented proxy jump using libssh * Recategorized loglevels to show fatal errors and alignment with OpenSSH log levels * Added ssh_channel_request_pty_size_modes() API to set terminal modes for PTYs * Added function to check username syntax * Added support to check all keys in authorized_keys instead of one in example server implementation * Handled hostkey similar to OpenSSH * Added ssh_session_socket_close() API in order to not close socket passed through options on error conditions * Added option SSH_BIND_OPTIONS_IMPORT_KEY_STR to read user-supplied key string in ssh_bind_options_set() * Improved log handling around ssh_set_callbacks * Added ssh_set_error_invalid in ssh_options_set() * Prevented signature blob to start with 1 bit in libgcrypt * Added support to unbreak key comparison of Ed25519 keys imported from PEM or OpenSSH container * Added support to calculate missing CRT parameters when building RSA key * Added ssh_pki_export_privkey_base64_format() and ssh_pki_export_privkey_file_format() to support exporting keys in different formats (PEM, OpenSSH) * Added support to compare certificates and handle automatic certificate authentication * Added support to make compile-commands generation conditional * Built fuzzers for normal testing * Avoided passing other events to callbacks when called recursively * Added control master and path options * Refactored channel_rcv_data, check for errors and report more useful errors * Added support to connect to other host addresses than just the first one * Terminated the server properly when the MaxAuthTries is reached * Added support for no-more-sessions@openssh.com request in both client and server * Added callback to support forwarded-tcpip requests * Bumped minimal CMake version to 3.12 * Added support for MBedTLS 3.6.x * Added support for +,-,^ modifiers in front of algorithm lists in options * Added callbacks for channel open response, and channel request response * Replaced chroot() from chroot_wrapper internal library with chroot() from priv_wrapper package * Added a placeholder for non-expanded identities * Improved handling of channel transfer window sizes Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 1c13abe6e9b4fb306e405f002234de074006124a Author: Adolf Belka Date: Sun May 11 12:13:01 2025 +0200 libid3tag: Update CMakeLists.txt with min cmake version - Patch has been created in the libid3tag source but not yet released. - This patch can be removed when the next version of libid3tag is released. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 698ca94fab0588085edce7b2bb497f316895df70 Author: Adolf Belka Date: Sun May 11 12:13:00 2025 +0200 json-c: Update to CMakeLists.txt min cmake version - Patch has been created in the json-c source but not yet provided with a release - Patch can be removed when nets version of json-c is released Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit f8020292c0a82f13d9896617b2629f55ac2c904e Author: Adolf Belka Date: Sun May 11 12:12:59 2025 +0200 xorriso: Package to replace cdrkit - This package is the command line standalong package from the libburnia project. - Build successfully created an iso package and this was used to install IPFire onto a vm on my testbed system. This worked successfully so xorriso successfully craeted a bootable iso image. - The build was also tested on a Core Update 193 repo and installed and it successfully created a bootable iso image with the backupiso process. Tested-by: Adolf Belka Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 35638a4e30f4aad2043ac44fd9580b1eb0defc99 Author: Adolf Belka Date: Sun May 11 12:12:57 2025 +0200 cmake: Update to version 4.0.2 - Update from version 3.25.2 to 4.0.2 - Update of rootfile - Version 4.0.0 removed compatibility with versions older than 3.5 so all package builds using cmake must have the min version at 3.5 or higher otherwise the build fails. - Version 3.31 has deprecated compatibility with versions older than 3.10 and this will be removed in some future version. - The rest of this patch set are the packages using cmake for the build that required some changes to the min version. - Changelog is too large to include here. Details can be found at https://cmake.org/cmake/help/v4.0/release/index.html Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit f803b7f5206ae9755081d318904ea5bb9c7af468 Author: Adolf Belka Date: Sun May 11 12:12:56 2025 +0200 curl: Update to version 8.13.0 - Update from version 8.11.0 to 8.13.0 - Update of rootfile - Knock on effect of this update is to require a newer version of cmake due to changes in some variable from curl that cmake uses. - This therefore the first of a patch set. - Changelog 8.13.0 Changes: curl: add write-out variable 'tls_earlydata' curl: make --url support a file with URLs gnutls: set priority via --ciphers IMAP: add CURLOPT_UPLOAD_FLAGS and --upload-flags lib: add CURLFOLLOW_OBEYCODE and CURLFOLLOW_FIRSTONLY OpenSSL/quictls: add support for TLSv1.3 early data rustls: add support for CERTINFO rustls: add support for SSLKEYLOGFILE rustls: support ECH w/ DoH lookup for config rustls: support native platform verifier var: add a '64dec' function that can base64 decode a string wolfssl: tls early data support Bugfixes: addrinfo: add curl macro to avoid redefining foreign symbols asyn-thread: avoid the separate 'struct resdata' alloc asyn-thread: avoid the separate curl_mutex_t alloc asyn-thread: do not allocate thread_data separately asyn-thread: remove 'status' from struct Curl_async autotools: fix `dllmain.c` in unity builds autotools: fix `libtest` bundle to depend on `FIRSTFILES` autotools: use `CURLDEBUG` to exclude TrackMemory code from unity aws_sigv4: cannot be used for proxy aws_sigv4: merge repeated headers in canonical request aws_sigv4: use strparse more for parsing base64: drop `BUILDING_CURL` macro, always include in tests/server build: add Windows CE / CeGCC support, with CI jobs build: cmake multi-pkg-config detection improvements (brotli, ldap, mbedtls) build: do not apply curl debug macros to `tests/server` by default build: drop unused `getpart` tool build: enable -Wjump-misses-init for GCC 4.5+ build: enable `-Wcast-qual`, fix or silence compiler warnings build: fix compiler warnings in feature detections build: replace Curl_ prefix with curlx_ for functions used in servers build: set `-O3` and tune WinCE in CI, fix `getpart`, `vtls_scache` fallouts build: set `HAVE_STDINT_H` if `stdint.h` is available build: set `HAVE_WRITABLE_ARGV` for Apple cross-builds build: silence bogus `-Wconversion` warnings with gcc 5.1-5.4 build: silence mingw32ce C99 format warnings, simplify CI build: tidy-ups around `inet_pton` c-ares httpsrr: fix ifdef c-ares: error out for unsupported versions, drop unused macros ca-native.md: sync with CURLSSLOPT_NATIVE_CA cf-socket: deduplicate Windows Vista detection cf-socket: remove empty switch client writer: handle pause before decoding cmake: `CURL_LIBDIRS` improvements (upstreamed from vcpkg) cmake: `SHARE_LIB_OBJECT=ON` requires CMake 3.12 or newer cmake: add custom command scripts as dependencies where missing cmake: add pre-fill for Unix, enable in GHA/macos, verify pre-fills cmake: add shell completion support cmake: allow `CURL_STATIC_CRT` with shared libcurl and no curl exe cmake: allow `CURL_STATIC_CRT` with UCRT VS2015+ builds cmake: allow empty `IMPORT_LIB_SUFFIX`, add suffix collision detection cmake: avoid `-Wnonnull` warning in `HAVE_FSETXATTR_5` detection cmake: disable HTTPS-proxy as a feature if proxy is disabled cmake: drop `CURL_DISABLE_TESTS` option cmake: drop `HAVE_C_FLAG_Wno_long_double` logic for ancient Apple gcc cmake: drop `HAVE_IN_ADDR_T` from pre-fill too cmake: drop two stray TLS feature checks for wolfSSL cmake: exclude `-MP` for `clang-cl` again cmake: fix `HAVE_ATOMIC`/`HAVE_STDATOMIC` pre-fill for clang-cl cmake: fix clang-tidy builds to verify tests, fix fallouts cmake: fix detection pre-fills for iOS cmake: fix ECH detection in custom-patched OpenSSL cmake: fix typo in ECH config error msg cmake: hide empty `MINGW64_VERSION` output for mingw32ce cmake: improve httpd detection for pytest cmake: mention 'insecure' in the debug build warning cmake: misc tidy-ups cmake: pre-fill known type sizes for Windows OSes cmake: replace CMAKE_COMPILER_IS_GNUCC with CMAKE_C_COMPILER_ID cmake: replace exec_program() with execute_process() cmake: restrict static CRT builds to static curl exe, test in CI cmake: sync cutoff version with autotools for picky option `-ftree-vrp` cmake: sync OpenSSL(-fork) feature checks with `./configure` cmake: unity mode optimization for non-`CURLDEBUG` `testdeps` targets CODE_STYLE: readability and banned functions config-win32: set `HAVE_STDINT_H` where available configure: call the blocking resolver "blocking", not "default" configure: fix ECH detection with MultiSSL configure: silence compiler warnings in feature checks, drop duplicates configure: tidy up shell completion rules configure: use `curl_cv_apple` variable conn: eliminate `conn->now` conn: fix connection reuse when SSL is optional conncache: eliminate `conn->destination_len` as premature optimization contributors.sh: lowercase 'github' for consistency contrithanks.sh: update docs/THANKS in place cookie: do prefix matching case-sensitively cookie: minor parser simplification cookie: simplify invalid_octets() core: stop redefining `E*` macros on Windows, map `EACCES`, related fixes curl.h: change some enums to defines with L suffix curl.h: convert CURLUSESSL* names to defines curl.h: stop defining non-curl `__has_declspec_attribute` curl.h: switch `CURL_HTTP_VERSION*` enums to long constants curl/system.h: drop leftover comment about 32 bit curl_off_t curl: add my_setopt_long() and _offt() curl_msh3: remove verify bypass from DEBUGBUILDs curl_setup: drop `ERANGE` (for WinCE), no longer used curl_setup_once: drop `E*` macro redefines unused (with winsock2) curl_setup_once: stop redefining `ENAMETOOLONG` to winsock2 error code curl_trc: fix build with CURL_DISABLE_VERBOSE_STRINGS curl_ws_recv.md: expand a little on the fragments the API delivers CURLMOPT_SOCKETFUNCTION.md: add advice for socket callback invocation CURLOPT_HTTPHEADER.md: add comments to the example CURLOPT_HTTPHEADER.md: rephrases curltime: use libcurl time functions in src and tests/server DISABLED: add 313 for sectransp (move from GHA/macos) docs/cmdline-opts: use imperative form docs: adapt to removed --with-random docs: add FD_ZERO to curl_multi_fdset example docs: bump `rustls` to 0.14.1 docs: correct argument names & URL redirection docs: minor edits to please the new spellchecker regime docs: rework RUSTLS install instructions docs: unify HTTP version style in --help output docs: vulnerabilities in debug code are not eligible for a bounty doh: improve HTTPS RR svcparams parsing doh: remove wrong but unreachable exit path from doh_decode_rdata_name dynbuf: assert init on free easy: drop `break` after `return` easy: fix warning about possible comma misuse eventfd: allow use on all CPUs examples: prefer `return` over `exit()` (cont.) ftp/sftp: strdup data info memory ftp: fix comment gnutls: fix connection state check on handshake gnutls: fix use of pkcs11 urls for keys/certs gtls: fix uninitialized variable hash: use single linked list for entries hostip: don't use alarm() for DoH resolves hostip: make CURLOPT_RESOLVE support replacing IPv6 addresses http2: add on_invalid_frame callback for error detection http2: detect session being closed on ingress handling http2: enhance error messages on Curl_dyn* upon receiving headers http2: fix stream assignemnt for pushes http2: reset stream on response header error HTTP3.md: only speak about minimal versions http: convert parsers to strparse http: fix NTLM info message typo http: fix the auth check http: make the RTSP version check stricter http: negotiation and room for alt-svc/https rr to navigate http: remove a HTTP method size restriction http: version negotiation http_chunks: replace a strofft call with curl_str_hex https-rr: implementation improvements httpsrr: fix port detection httpsrr: fix the HTTPS-RR threaded-resolver build combo INFRASTRUCTURE.md: add IRC and Matrix details INSTALL-CMAKE.md: CMake usage updates INSTALL-CMAKE.md: mention `ZLIB_USE_STATIC_LIBS` lib1156: pass longs to `curl_easy_setopt()` lib1560: test set path containing LR or CR lib2302: fix crash due to stack overflow on MSVC and clang Windows lib696: fix building on Windows in non-bundle mode lib: better optimized casecompare() and ncasecompare() lib: clear up CURLRES_ASYNCH vs USE_CURL_ASYNC use lib: fix two curlx_strtoofft invokes lib: rename curlx_strtoofft to Curl_str_numblanks() lib: replace while(ISBLANK()) loops with Curl_str_passblanks() lib: simplify more white space loops lib: strtoofft.h header cleanup lib: use Curl_str_* instead of strtok_r() lib: use Curl_str_number() for parsing decimal numbers libssh2: fix freeing of resources in disconnect libssh2: fix memory leak in `SSH_SFTP_REALPATH` state libssh2: fix to ignore `known_hosts` if SHA256 host public key is set libssh2: print user with verbose flag libssh2: show crypto backend in the verbose connect log libssh: fix freeing of resources in disconnect libssh: fix scp large file upload for 32-bit size_t systems libtest/first.c: remove the Test: stderr output for unity builds libtest/libprereq.c: set CURLOPT_FOLLOWLOCATION with a long managen: accept more markdown-quote-markers managen: correct the warning for un-escaped '<' and '>' mbedtls: re-enable an error check memdebug.h: avoid `-Wredundant-decls` with an extra guard memdebug: drop dynamic allocation from `curl_dbg_log()` mprintf: switch three number parsers to use strparse mqtt: convert sendleftovers to dynbuf msvc: drop support for VS2005 and older multi: call protocol handler done() if PROTOCONNECT or later multi: event based rework multi: kill off remaining internal handles in curl_multi_cleanup multi: start the loop over when handles are removed multi_ev: fixes regarding connection shutdowns ngtcp2: do not iterate over multi handles ntlm: merge ntlm.h into ntlm.c openssl-quic: do not iterate over multi handles openssl: check return value of X509_get0_pubkey openssl: drop support for old OpenSSL/LibreSSL versions openssl: fix crash on missing cert password openssl: fix pkcs11 URI checking for key files. openssl: remove bad `goto`s into other scope prox/preproxy.md: document argument within pytest: test negotiate with http proxy quiche: do not iterate over multi handles RELEASE-PROCEDURE.md: explain release candidates request: clear sendbuf_hds_len when resetting request bufq resolve: fix building without Unix sockets and `CURLDEBUG` runtests: accept `CURL_DIRSUFFIX` without ending slash runtests: add feature-based filtering runtests: check and report if `diff` tool is missing runtests: drop logic calling the `handle` tool (Windows) runtests: drop recognizing 'winssl' as Schannel runtests: drop ref to unused external function runtests: fix bundled test invocation with `-g` option runtests: fix SSH server not starting in cases, re-ignore failing vcpkg CI jobs runtests: fix test key format for libssh2 WinCNG (and others) runtests: generate certs dynamically, bump to EC-256, tidy up runtests: recognize AWS-LC as OpenSSL runtests: rewrite `genserv.sh` in Perl runtests: support multi-target cmake, drop workarounds from CI runtests: support running tests under wine or qemu (cont.) runtests: support running tests under wine or qemu runtests: use `setfacl` on Cygwin/MSYS, if present rustls: add ECH support w/ string ECH config rustls: cap maximum allowed CRL file size to 8MB rustls: support ECH GREASE rustls: use client cert and key if available schannel: deduplicate Windows Vista detection schannel: enable ALPN support under WINE 6.0+ schannel: enable ALPN with MinGW, fix ALPN for UWP builds schannel: guard ALPN init code to ALPN builds scripts/managen: fix option 'single' scripts/managen: fix parsing of markdown code sections scripts: update completion.pl to parse options from docs sectransp: add support for HTTP/2 in gcc builds sendf: client reader line conversion: do not change data->state.infilesize setopt: illegal CURLOPT_SOCKS5_AUTH should return error setopt: remove unnecessary void pointer typecasts setopt: setting PROXYUSERPWD after PROXYUSERNAME/PASSWORD is fine shutdowns: split shutdown handling from connection pool socks: remove bad assert from do_SOCKS5() src: avoid strdup on platforms not doing UTF-8 conversions src: cleanup ISBLANK vs ISSPACE src: remove Curl_ prefix from tool-specific function src: remove final uses of Curl_ symbol prefixes in tool code src: replace strto[u][ld] with curlx_str_ parsers ssh: consider sftp quote commands case sensitive sshserver.pl: adjust `AuthorizedKeysFile2` cutoff version sshserver.pl: use Perl `chmod` sshserver: fix excluding obsolete client config lines ssl session cache: add exportable flag SSLCERTS: list support for SSL_CERT_FILE and SSL_CERT_DIR strparse: make Curl_str_number() return error for no digits strparse: switch the API to work on 'const char *' strparse: switch to curl_off_t as base data type test1022: add support for rc releases test1167: catch #defines with extra whitespace test313: disable CRL test for Schannel due to lack of support and flakiness test313: disable via `` for backends without CRL support test489: set output dir test612: SCP `rm` the uploaded remote file (not the local source), unignore in CI test613: make it pass on Windows, fix postprocess, unignore in CI test615: fix for Cygwin, unignore in CI tests/certs: cleanup tests/server: drop unused `base64.pl` tests/server: fix to check against winsock2 error codes on Windows tests/server: give global `path` variable a more descriptive name tests/server: make the signal handler signal-safe tests/server: replace `errno` with `SOCKERRNO` in sockfilt, socksd, sws tests/server: replace `strerror` with `sstrerror` in socksd tests/server: support bundle binary tests/server: sync `wait_ms()` with the libcurl implementation tests/server: use `curlx_str_numblanks()` to avoid `errno` tests/servers.pm: remove unused variable 'portrange' tests: build non-debug unit tests with autotools, run them tests: fix comment in lib533 tests: fix enum/int confusion, fix autotools `CFLAGS` for `servers` tests: make sure 'commands.log' is generated in the correct logdir tests: mark tests 1631, 1632 flaky tests: reformat error messages to avoid tripping MSBuild tests: remove base64 encoded sections tests: Remove unused variables tests: replace remaining non-ASCII bytes with hex markup tftpd: prefix TFTP protocol error `E*` constants with `TFTP_` tidy-up: align MSYS2/Cygwin codepaths, follow Cygwin `MAX_PID` bump tidy-up: delete, comment or scope C macros reported unused tidy-up: drop unused `CURL_INADDR_NONE` macro and `in_addr_t` type tidy-up: use `CURL_ARRAYSIZE()` timediff: fix comment for curlx_mstotv() timediff: remove unnecessary double typecast tool_dirhie: create dir hierarchy without strtok tool_getparam: clear sensitive arguments better tool_getparam: do parse_upload_flags without the alloc/free tool_getparam: parse --trace-config without strdup()/free() tool_getparam: parse_header() without strtok tool_operate: change "1 retries" to "1 retry" tool_operate: fail SSH transfers without server auth tool_operate: fix pluralization of seconds tool_operate: remove unnecessary (long) typecasts tool_paramhlp: do --proto parsing without strtok tool_parsecfg: make my_get_line skip comments and newlines tool_setopt: reduce use of "code hiding" macros url: call protocol handler's disconnect in Curl_conn_free urlapi: fix redirect from file:// with query, and simplify urlapi: remove percent encoded dot sequences from the URL path urlapi: simplify junkscan urldata: remove 'hostname' from struct Curl_async variable.md: clarify 'trim' example vquic: obey IOV_MAX vtls: fix compiler warnings seen with gcc 7.3.0 and mbedTLS winbuild: reduce command-line length by dropping whitespace windows: do not use winsock2 `inet_ntop()`/`inet_pton()` windows: drop code and curl manifest targeting W2K and older windows: fix issues detected by clang-tidy, and some more wolfssh: fix freeing of resources in disconnect wolfssh: retrieve the error using wolfSSH_get_error wolfssl: fix CA certificate multiple location import wolfssl: fix unused variable warning wolfssl: warn if CA native import option is ignored wolfssl: when using PQ KEM, use ML-KEM, not Kyber ws: corrected curlws_cont to reflect its documented purpose ws: fix and extend CURLWS_CONT handling zlib: bump minimum to 1.2.5.2 (was: 1.2.0.4) 8.12.1 Bugfixes: all: remove FIXME and TODO comments asyn-thread: fix build with `CURL_DISABLE_SOCKETPAIR` asyn-thread: fix HTTPS RR crash asyn-thread: fix the returned bitmask from Curl_resolver_getsock asyn-thread: survive a c-ares channel set to NULL build: add tool_hugehelp.c into IBMi build checksrc.pl: warn on FIXME/TODO comments cmake/Find: set `_FOUND` for compatibility when found via `pkg-config` cmake: add integration tests, run them in CI cmake: always reference OpenSSL and ZLIB via imported targets cmake: avoid unnecessary `-L` for implicit link dirs cmake: drop `LDAP_DEPRECATED=1` macro, to sync with autotools cmake: fix `HAVE_GETHOSTBYNAME_R_*` detections with `CURL_WERROR=ON` cmake: fix to detect `HAVE_OPENSSL_SRP` in MSVC UWP builds cmake: fix/add missing feature detections for Windows/MS-DOS cmake: initialize variables where missing cmake: lib order fixes for picky linkers (e.g. binutils `ld`) cmake: normalize before matching paths with syspaths cmake: respect `GNUTLS_CFLAGS` when detected via `pkg-config` cmake: respect `GNUTLS_LIBRARY_DIRS` in `libcurl.pc` and `curl-config` cmake: save a line with `CMAKE_C_IMPLICIT_LINK_DIRECTORIES` exclusion cmake: tidy up string append and list prepend syntax configure/cmake: check for realpath configure/cmake: set asyn-rr a feature only if httpsrr is enabled content_encoding: #error on too old zlib curl_global_sslset.md: Add SSL backend names CURLOPT_SSH_KNOWNHOSTS.md: strongly recommend using this CURLSHOPT_SHARE.md: adjust for the new SSL session cache docs: better explain multi-part byte range behavior docs: use valid example domain names generate.bat: remove curl_get_line.c from the curlx file list header.md: mention `Authorization:` and `Cookie:` special treatment imap: TLS upgrade fix INTERNALS: fix c-ares, as we actually support 1.6.0 or later ldap: drop support for legacy Novell LDAP SDK lib: include necessary headers for `inet_ntop`/`inet_pton` lib: silence LibreSSL collision warning on non-MSVC Windows libssh2: comparison is always true because rc <= -1 libssh2: raise lowest supported version to 1.2.8 libssh: drop support for libssh older than 0.9.0 libssh: silence `-Wconversion` with a cast (Windows 32-bit) netrc: return code cleanup, fix missing file error openssl-quic: ignore ciphers for h3 openssl: fix out of scope variables in goto pop3: TLS upgrade fix runtests: fix the disabling of the memory tracking runtests: quote commands to support paths with spaces scache: add magic checks smb: silence `-Warray-bounds` with gcc 13+ smtp: TLS upgrade fix SPONSORS.md: clarify that we don't promise goods or services test1516: avoid failure due to spaces in path test2080: simplify, avoid the null byte tests: fix test 558, 1330 for MSVC, allow TrackMemory with MSVC in cmake tidy-up: make per-file `ARRAYSIZE` macros global as `CURL_ARRAYSIZE` tool_cfgable: sort struct fields by size, use bitfields for booleans tool_getparam: add "TLS required" flag for each such option tool_progress: fix percent output of large parallel transfers tool_ssls: switch to tool-specific get_line function verbose.md: mention how carriage-return might occur in headers vquic: make the "disable GSO" use infof, not failf vtls: fix multissl-init vtsl: eliminate 'data->state.ssl_scache' wakeup_write: make sure the eventfd write sends eight bytes wolfssl: silence compiler warning (MSVC 2019), simplify existing 8.12.0 Changes: curl: add byte range support to --variable reading from file curl: make --etag-save acknowledge --create-dirs getinfo: fix CURLINFO_QUEUE_TIME_T and add 'time_queue' var getinfo: provide info which auth was used for HTTP and proxy hyper: drop support openssl: add support to use keys and certificates from PKCS#11 provider QUIC: 0RTT for gnutls via CURLSSLOPT_EARLYDATA vtls: feature ssls-export for SSL session im-/export Bugfixes: altsvc: avoid integer overflow in expire calculation altsvc: return error on dot-only name android: add CI jobs, buildinfo, cmake docs, disable `CURL_USE_PKGCONFIG` by default asyn-ares: acknowledge CURLOPT_DNS_SERVERS set to NULL asyn-ares: fix memory leak asyn-ares: initial HTTPS resolve support asyn-thread: use c-ares to resolve HTTPS RR async-thread: avoid closing eventfd twice autotools: add support for mingw UWP builds autotools: silence gcc warnings in libtool code binmode: convert to macro and use it from tests build: delete `-Wsign-conversion` related FIXMEs build: drop `-Winline` picky warning build: drop `tool_hugehelp.c.cvs`, tidy up macros, drop `buildconf.bat` build: drop unused feature macros, update exception list build: fix `-Wtrampolines` picky warning for gcc 4.x versions build: fix compiling with GCC 4.x versions build: fix the tidy targets for autotools build: fix unsigned `time_t` detection for cmake, MS-DOS, AmigaOS build: replace configure check with PP condition (Android <21) build: stop detecting `sched_yield()` on Windows c-ares: fix/tidy-up macro initializations, avoid a deprecated function cd2nroff: do not insist on quoted <> within backticks cd2nroff: support "none" as a TLS backend cf-https-connect: look into httpsrr alpns when available cf-socket: error if address can't be copied cfilters: kill connection filter events attach+detach checksrc.bat: remove explicit SNPRINTF bypass checksrc: ban use of sscanf() checksrc: check for return with parens around a value/name checksrc: exclude generated bundle files to avoid race condition checksrc: fix the return() checker checksrc: introduce 'banfunc' to ban specific functions cmake/Find: add `iphlpapi` for c-ares, omit syslibs if dep not found cmake/FindLDAP: avoid empty 'Requires' item when omitting `pkg-config` module cmake/FindLDAP: avoid framework locations for libs too (Apple) cmake/FindLibpsl: protect against `pkg-config` "half-detection" cmake/FindLibssh: sync header comment with other modules cmake/FindMbedTLS: drop lib duplicates early cmake: add `librtmp` Find module cmake: add LDAP Find module cmake: add native `pkg-config` detection for remaining Find modules cmake: allow `CURL_LTO` regardless of `CURL_BUILD_TYPE`, enable in CI cmake: clang-cl improvements cmake: delete accidental debug message cmake: deprecate winbuild, add migration guide from legacy build methods cmake: detect mingw-w64 version, pre-fill `HAVE_STRTOK_R` cmake: do not store `MINGW64_VERSION` in cache cmake: drop `CURL_USE_PKGCONFIG` from `curl-config.cmake.in` cmake: drop `fseeko()` pre-fill and check for Windows cmake: drop duplicate Windows cache value cmake: drop redundant FOUND checks (libgsasl, libssh, libuv) cmake: drop redundant opening/closing `.*` from `MATCH` expressions cmake: drop unused `HAVE_SYS_XATTR_H` detection cmake: drop VS2010 "Dialog Hell" workaround added in 2013 cmake: extend zlib's `AUTO` option to brotli, zstd and enable if found cmake: fix `net/in.h` detection for MS-DOS cmake: improve `curl_dumpvars()` and move to `Utilities.cmake` cmake: make libpsl required by default cmake: make system libraries `dl`, `m`, `pthread` customizable cmake: move `pkg-config` names to Find modules cmake: move GSS init before feature detections cmake: move mingw UWP workaround from GHA to `CMakeLists.txt` cmake: namespace functions and macros cmake: optimize out 4 picky warning option detections with gcc cmake: pick a better IPv6 feature flag when assembling the feature list cmake: pre-fill `HAVE_STDATOMIC_H`, `HAVE_ATOMIC` for mingw-w64 cmake: pre-fill `HAVE_STDINT_H` on Windows cmake: prefer dash-style MSVC options cmake: publish/check supported protocols/features via `CURLConfig.cmake` cmake: replace `unset(VAR)` with `set(VAR "")` for init cmake: sync OpenSSL QUIC fork detection with autotools cmake: use `CMAKE_REQUIRED_LINK_DIRECTORIES` cmake: use `STREQUAL` to detect Linux cmake: warn for OpenSSL versions missing TLS 1.3 support cmdline-opts/version.md: describe multissl, mention SSLS-EXPORT completion.pl: add completion for paths after @ for fish config-mac: drop `MACOS_SSL_SUPPORT` macro config: drop unused code and variables configure: do not inline 'dnl' comments configure: drop unused detections and macros configure: streamline Windows large file feature check configure: UWP and Android follow-up fixes conncache: count shutdowns against host and max limits conncache: result_cb comment removed from function docs content_encoding: drop support for zlib before 1.2.0.4 content_encoding: namespace GZIP flag constants content_encoding: put the decomp buffers into the writer structs content_encoding: support use of custom libzstd memory functions cookie: cap expire times to 400 days cookie: fix crash in netscape cookie parsing cookie: parse only the exact expire date curl-functions.m4: fix indentation in `CURL_SIZEOF()` curl: return error if etag options are used with multiple URLs curl_multi_fdset: include the shutdown connections in the set curl_multi_waitfds.md: tidy up the example curl_multibyte: support Windows paths longer than MAX_PATH curl_setup: fix missing `ADDRESS_FAMILY` type in rare build cases curl_sha512_256: rename symbols to the curl namespace curl_url_set.md: adjust the added-in to 7.62.0 curl_ws_recv.md: fix typo CURLOPT_CONNECT_ONLY.md: an easy handle with this option set cannot be reused CURLOPT_PROXY.md: clarify the crendential support in proxy URLs CURLOPT_RESOLVE.md: fix wording CURLOPT_SEEKFUNCTION.md: used for FTP, HTTP and SFTP (only) docs/BUGS.md: remove leading space from a link docs/cmdline-opts/_ENVIRONMENT.md: minor language fix docs/cmdline-opts/location.md: fix typos for location flag docs/HTTP-COOKIES.md: link to more information docs/HTTPSRR.md: initial HTTPS RR documentation docs/libcurl/opts: clarify the return values docs/libcurl: return value overhall docs/TLS-SESSIONS: fix typo, the->they docs: document the behavior of -- in the curl command line docs: use lowercase curl and libcurl doh: cleanups and extended HTTPS RR code doh: send HTTPS RR requests for all HTTP(S) transfers easy: allow connect-only handle reuse with easy_perform easy: make curl_easy_perform() return error if connection still there easy_lock: use Sleep(1) for thread yield on old Windows ECH: update APIs to those agreed with OpenSSL maintainers examples/block-ip: drop redundant `memory.h` include examples/block-ip: show how to block IP addresses examples/complicated: fix warnings, bump deprecated callback, tidy up examples/synctime.c: remove references to dead URLs and functionality examples: make them compile with compatibility functions disabled (Windows) examples: use return according to code style file: drop `OPEN_NEEDS_ARG3` option file: fix Android compiler warning gitignore: add generated unity sources for lib and src GnuTLS: fix 'time_appconnect' for early data hash: add asserts in hash_element_dtor() HTTP/2: strip TE request header http2: fix data_pending check http2: fix value stored to 'result' is never read http: fix build with `CURL_DISABLE_COOKIES` http: ignore invalid Retry-After times http_aws_sigv4: Fix invalid compare function handling zero-length pairs https-connect: start next immediately on failure INFRASTRUCTURE.md: project infra INSTALL-CMAKE.md: fix punctuation INSTALL.md: add CMake examples for macOS and iOS INSTALL.md: document VS2008 and mingw-w64 INTERNALS.md: sync wolfSSL version requirement with source code lib517: extend the getdate test with quotes and leading "junk" lib: clarify 'conn->httpversion' lib: redirect handling by protocol handler lib: remove `__EMX__` guards lib: replace `inline` redefine with `CURL_INLINE` macro lib: supress deprecation warnings in apple builds lib: TLS session ticket caching reworked libcurl/opts: do not save files in dirs where attackers have access Makefile.dist: delete Makefile.mk: drop in favour of autotools and cmake (MS-DOS, AmigaOS3) mbedtls: fix handling of blocked sends mbedtls: PSA can be used independently of TLS 1.3 (avoid runtime errors) mime: explicitly rewind subparts at attachment time. mprintf: fix integer handling in float precision mprintf: terminate snprintf output on windows msvc: add missing push/pop for warning pragmas msvc: assume `_INTEGRAL_MAX_BITS >= 64` msvc: drop checks for ancient versions msvc: fix building with `HAVE_INET_NTOP` and MSVC <=1900 msvc: require VS2005 for large file support msvc: tidy up `_CRT_*_NO_DEPRECATE` definitions multi: fix curl_multi_waitfds reporting of fd_count multi: fix return code for an already-removed easy handle multihandle: add an ssl_scache here multissl: auto-enable `OPENSSL_COEXIST` for wolfSSL + OpenSSL multissl: make openssl + wolfssl builds work netrc: 'default' with no credentials is not a match netrc: fix password-only entries netrc: restore _netrc fallback logic ngtcp2: fix memory leak on connect failure ngtcp2: fix two cases of value stored never read openssl: define `HAVE_KEYLOG_CALLBACK` before use openssl: drop unused `HAVE_SSL_GET_SHUTDOWN` macro openssl: fix ECH logic osslq: use SSL_poll to determine writeability of QUIC streams projects/Windows: remove wolfSSL from legacy projects projects: fix `INSTALL-CMAKE.md` references pytest: remove 'repeat' parameter pytest: use httpd/apache2 directly, no apachectl RELEASE-PROCEDURE.md: mention how to publish security advisories runtests.pl: fix precedence issue scripts/mdlinkcheck: markdown link checker sectransp: free certificate on error select: avoid a NULL deref in cwfds_add_sock smb: fix compiler warning src: add `CURL_STRICMP()` macro, use `_stricmp()` on Windows src: drop support for `CURL_TESTDIR` debug env src: omit hugehelp and ca-embed from libcurltool ssl session cache: change cache dimensions strparse: string parsing helper functions symbols-in-versions: update version for LIBCURL_VERSION and LIBCURL_VERSION_NUM system.h: add 64-bit curl_off_t definitions for NonStop system.h: drop compilers lacking 64-bit integer type (Windows/MS-DOS) system.h: drop duplicate and no-op code system.h: fix indentation telnet: handle single-byte input option test1960: don't close the socket too early test483: require cookie support tests/http/clients: use proper sleep() call on NonStop tests: change the behavior of swsbounce tests: stop promoting perl warnings to fatal errors TheArtOfHttpScripting.md: rewrite double 'that' tidy-up: `curl_setup.h`, `curl_setup_once.h`, `config-win32ce.h` tidy-up: drop parenthesis around `return` expression tidy-up: drop parenthesis around `return` values tidy-up: extend `CURL_O_BINARY` to lib and tests TLS: check connection for SSL use, not handler tool_formparse.c: make curlx_uztoso a static in here tool_formparse: accept digits in --form type= strings tool_getparam: ECH param parsing refix tool_getparam: fail --hostpubsha256 if libssh2 is not used tool_getparam: fix "Ignored Return Value" tool_getparam: fix memory leak on error in parse_ech tool_getparam: fix the ECH parser tool_operate: make --etag-compare always accept a non-existing file transfer: fix CURLOPT_CURLU override logic urlapi: fix redirect to a new fragment or query (only) urldata: tweak the UserDefined struct variable.md: mention --expand-variable for variables to variables variable.md: show function use with examples version: fix the IDN feature for winidn and appleidn vquic: fix 4th function call argument is an uninitialized value vquic: make vquic_send_packets not return without setting psent vtls: fix default SSL backend as a fallback vtls: only remember the expiry timestamp in session cache vtls: remove 'detach/attach' functions from TLS handler struct vtls: remove unusued 'check_cxn' from TLS handler struct vtls: replace "none"-functions with NULL pointers VULN-DISCLOSURE-POLICY.md: mention the not setting CVSS VULN-DISCLOSURE-POLICY: on legacy dependencies websocket: fix message send corruption windows: drop dupe macros, detect `CURL_OS` for WinCE ARM, indentation windows: drop redundant `USE_WIN32_SMALL_FILES` macro windows: drop two missed `buildconf.bat` references windows: merge `config-win32ce.h` into `config-win32.h` ws-docs: extend WebSocket documentation ws-docs: remove the outdated texts saying ws support is experimental ws: reject frames with unknown reserved bits set x509asn1: add parse recursion limit 8.11.1 Bugfixes: build: fix ECH to always enable HTTPS RR build: fix MSVC UWP builds build: omit certain deps from `libcurl.pc` unless found via `pkg-config` build: use `_fseeki64()` on Windows, drop detections cmake: do not echo most inherited `LDFLAGS` to config files cmake: drop cmake args list from `buildinfo.txt` cmake: include `wolfssl/options.h` first cmake: remove legacy unused IMMEDIATE keyword cmake: restore cmake args list in `buildinfo.txt` cmake: set `CURL_STATICLIB` for static lib when `SHARE_LIB_OBJECT=OFF` cmake: sync GSS config code with other deps cmake: typo in comment cmake: work around `ios.toolchain.cmake` breaking feature-detections cmakelint: fix to check root `CMakeLists.txt` cmdline/ech.md: formatting cleanups configure: add FIXMEs for disabled pkg-config references configure: do not echo most inherited `LDFLAGS` to config files configure: replace `$#` shell syntax cookie: treat cookie name case sensitively curl-rustls.m4: keep existing `CPPFLAGS`/`LDFLAGS` when detected curl.h: mark two error codes as obsolete curl: --continue-at is mutually exclusive with --no-clobber curl: --continue-at is mutually exclusive with --range curl: --continue-at is mutually exclusive with --remove-on-error curl: --test-duphandle in debug builds runs "duphandled" curl: do more command line parsing in sub functions curl: rename struct var to fix AIX build curl: use realtime in trace timestamps curl_multi_socket_all.md: soften the deprecation warning CURLOPT_PREREQFUNCTION.md: add result code on failure digest: produce a shorter cnonce in Digest headers DISTROS: update Alt Linux links dmaketgz: use --no-cache when building docker image docs: bring back ALTSVC.md and HSTS.md docs: document default `User-Agent` docs: suggest --ssl-reqd instead of --ftp-ssl duphandle: also init netrc ECH: enable support for the AWS-LC backend hostip: don't use the resolver for FQDN localhost http_negotiate: allow for a one byte larger channel binding buffer http_proxy: move dynhds_add_custom here from http.c KNOWN_BUGS: setting a disabled option should return CURLE_NOT_BUILT_IN krb5: fix socket/sockindex confusion, MSVC compiler warnings lib: fixes for wolfSSL OPENSSL_COEXIST libssh: use libssh sftp_aio to upload file libssh: when using IPv6 numerical address, add brackets macos: disable gcc `availability` workaround as needed mbedtls: call psa_crypt_init() in global init mime: fix reader stall on small read lengths mk-ca-bundle: remove CKA_NSS_SERVER_DISTRUST_AFTER conditions mprintf: fix the integer overflow checks multi: add clarifying comment for wakeup_write() multi: fix callback for `CURLMOPT_TIMERFUNCTION` not being called again when... netrc: address several netrc parser flaws netrc: support large file, longer lines, longer tokens nghttp2: use custom memory functions OpenSSL: improvde error message on expired certificate openssl: remove three "Useless Assignments" openssl: stop using SSL_CTX_ function prefix for our functions os400: Fix IBMi builds os400: Fix IBMi EBCDIC conversion of arguments pytest: add test for use of CURLMOPT_MAX_HOST_CONNECTIONS rtsp: check EOS in the RTSP receive and return an error code schannel: remove TLS 1.3 ciphersuite-list support setopt: fix CURLOPT_HTTP_CONTENT_DECODING setopt: fix missing options for builds without HTTP & MQTT show-headers.md: clarify the headers are saved with the data socket: handle binding to "host!" socketpair: fix enabling `USE_EVENTFD` strtok: use namespaced `strtok_r` macro instead of redefining it tests: add the ending time stamp in testcurl.pl tests: re-enable 2086, and 472, 1299, 1613 for Windows TODO: consider OCSP stapling by default tool_formparse: remove use of sscanf() tool_getparam: parse --localport without using sscanf tool_getpass: fix UWP `-Wnull-dereference` tool_getpass: replace `getch()` call with `_getch()` on Windows tool_urlglob: parse character globbing range without sscanf vtls: fix compile warning when ALPN is not available Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 372f500fabfc0b4b9202995a444cf0833044d5d0 Author: Michael Tremer Date: Mon May 12 14:37:15 2025 +0000 core196: Ship GCC Signed-off-by: Michael Tremer commit 878059cf05ab4abb780012ba6861c7b7191e03c9 Author: Michael Tremer Date: Fri May 2 10:16:32 2025 +0000 gmp: Fix build with GCC 15 Signed-off-by: Michael Tremer commit 1be21e5dab15a1be18abc8d2edcd802984294527 Author: Michael Tremer Date: Fri May 2 10:16:31 2025 +0000 make.sh: Bump the toolchain version Signed-off-by: Michael Tremer commit 86f04e2336932fc3e4243b9c1287f7328be7ee70 Author: Michael Tremer Date: Fri May 2 10:16:30 2025 +0000 perl: Respect our CFLAGS/LDFLAGS in the toolchain stage, too Signed-off-by: Michael Tremer commit a0d9793526b13820b56779d22b5b245b8f467d34 Author: Michael Tremer Date: Fri May 2 10:16:29 2025 +0000 pam: Fix build with GCC 15 on aarch64 Signed-off-by: Michael Tremer commit 6a8abf9caf675f3dee2fc45dd17a35d1b8ea4fba Author: Michael Tremer Date: Fri May 2 10:16:28 2025 +0000 pkg-config: Fix build with GCC 15 Signed-off-by: Michael Tremer commit 5b58fb1b99b378ec3b9a9b6ca37e40d76d0ef098 Author: Michael Tremer Date: Fri May 2 10:16:27 2025 +0000 expect: Update to 5.45.4 Also fix build with GCC 15. Signed-off-by: Michael Tremer